p5-MIME-Types: update to 2.30.
version 2.30: Mon 8 Dec 20:33:20 CET 2025
Fixes:
- no undef when simplifying illegal type
github issue #15 [Todd Richmond]
Improvements:
- add bugtracker to meta
- better OO use of attributes.
p5-Exporter-Tiny: update to 1.006003.
1.006003 2025-12-07
[ Bug Fixes ]
- Support Perl versions >= 10, in theory.
Graham Knop++
[ Documentation ]
- Restore documentation about exporting to hashes which was accidentally
removed.
- Update copyright dates.
p5-DateTime-TimeZone: update to 2.66.
2.66 2025-12-11
- This release is based on version 2025c of the Olson database. This release only includes
historical changes.
www/drupal11: update to 11.1.9
11.1.6 (2025-04-02)
This is a patch (bugfix) release of Drupal 11 and is ready for use on
production sites.
11.1.7 (2025-05-08)
This is a patch (bugfix) release of Drupal 11 and is ready for use on
production sites.
11.1.8 (2025-06-05)
This is a patch (bugfix) release of Drupal 11 and is ready for use on
production sites.
11.1.9 (2025-11-12)
[50 lines not shown]
www/php-apcu: update to 5.1.28
5.1.28 (2025-12-07)
* Defragmentation now reclaims unused space from moved entries, resulting in
better compaction.
* Shared memory for new entries is allocated faster in scenarios with many
free memory blocks. This should improve APCu's insertion performance when
entries are frequently deleted or replaced, or when APCu is used with
larger amounts of memory.
* Trying to insert entries larger than the shared memory no longer results
in cache wipes.
* Fix build against PHP 8.6.
* Fix apc.php compatibility with older apcu versions.
devel/php-xdebug: update to 3.5.0
3.5.0 (2025-12-08)
New features:
* Fixed issue #2338: Add experimental support for Windows Named Pipes
control socket
* Fixed issue #2369: Implement "Native Xdebug Path Mapping" project
* Fixed issue #2370: PHP 8.5 support
Improvements:
* Fixed issue #2213: Expose __EXCEPTION virtual variable for current
EG(exception)
* Fixed issue #2363: Add better debugging support for PHP 8.5's pipes
* Fixed issue #2345: DBGP's detach does not support base64 encoded strings
Fixed bugs:
[12 lines not shown]
databases/php-redis: update to 6.3.0
6.3.0 (2025-11-06)
This release introduces support for dozens of new commands, including hash
field expiration, Valkey?s DELIFEQ, and Redis vector set commands. It also
includes many bug fixes and performance improvements.
Fixed:
* Cloning our objects should not segfault [770034cc] (michael-grunder)
* Fix return type for RedisCluster vgetattr and vsetattr [834d2b37]
(michael-grunder)
databases/ruby-sequel: update to 5.99.0
5.99.0 (2025-12-01)
* Support passing a set as a Dataset#full_text_search terms argument on
MSSQL, MySQL, and PostgreSQL (jeremyevans)
* Optimize Dataset#as_set calls to avoid queries in the subset_static_cache
plugin (jeremyevans)
* Optimize Model.as_set calls to avoid queries in the static_cache plugin
(jeremyevans)
* Support filtering by associations with sets in the pg_array_associations
plugin (jeremyevans)
* Support sets in the to_dot extension (jeremyevans)
* Support splitting nil values from sets in the split_array_nil extension
[35 lines not shown]
rust192: Add a package for rust 1.92.0.
Pkgsrc changes:
* Update version & checksums.
* Adapt openssl-src patches to minor version update.
Noteable failures at the time of commit:
* The cross-build for sparc64 fails, not yet reported.
Upstream changes relative to 1.91.1:
Version 1.92.0 (2025-12-11)
==========================
Language
--------
- [Document `MaybeUninit` representation and validity]
(https://github.com/rust-lang/rust/pull/140463)
- [Allow `&raw [mut | const]` for union field in safe code]
[124 lines not shown]
textproc/typst: update to 0.14.2
Version 0.14.2 (December 12, 2025)
Security
Updated the WebAssembly runtime used for executing plugins. The version used in Typst 0.14.0 and 0.14.1 suffers from a memory handling vulnerability. Based on our investigation, the vulnerability would be very hard to exploit in practice, but an exploit could theoretically be feasible. In any case, we recommend upgrading to Typst 0.14.2. This holds in particular for local users. In the web app, the bug is not critical as the browser offers an extra layer of protection.
Typst 0.13.1 and below are not affected by this vulnerability.
Technical details: The wasmi WebAssembly runtime versions used in 0.14.0 and 0.14.1 have a use-after-free memory handling bug in certain memory growth situations. Specifically, the bug occurs when the plugin tries to grow its memory, but allocating the requested amount of memory fails. Based on our investigation, the bug is hard to trigger in practice as the WebAssembly linear memory is always limited to 4GB on a technical level and modern operating systems rarely fail to serve a 4GB memory allocation request (typically not even under RAM pressure). Once the bug is triggered, it would also still be very challenging to turn it into an actual exploit. Regardless, we recommend upgrading to Typst 0.14.2 for protection against a potential exploit.
Diagnostics
Added a hint when array.sorted fails because a pair of elements could not be compared. This hint aids with fixing bugs in user code that were surfaced by a change in internal sorting behavior in Typst 0.14.1.
